A small script to automate the receipt of Let’s Encrypt certificates using lego.
legosh looks for configs in the ~/.legosh directory. You can override this behavior using LEGOSH_DIR:
LEGOSH_DIR=/path lego.sh ...The env file contains the variables needed for lego and legosh to work. Example:
LEGOSH_EMAIL="[email protected]"
LEGOSH_RUN_HOOK="run_hook.sh" # Optinal. The command must be in PATH or the full path to the command.
LEGOSH_RENEW_HOOK="renew_hook.sh" # Optinal. The command must be in PATH or the full path to the command.
LEGOSH_DNS_PROVIDER="cloudflare"
export CLOUDFLARE_DNS_API_TOKEN="XXXX"
In the config rewnew_cert.list you can add domains to be renewed. Example:
domain.com
domain2.dev
_.domain2.dev
_.domain2.dev - more info here.
Certificate names should be used from the
Certificate Namefield of thelego listcommand.
lego.sh helpUsage: lego.sh ...
ACTION:
run domain[,domain...] run lego to get certificate
renew [domain[,domain...]] renew certificate
revoke domain[,domain...] revoke certificate
help show this help
Path to env file: /root/.legosh/env
Renew certs: /root/.legosh/renew_cert.list
Repository: https:/github.com/k0st1an/legosh
License: BSD 3-Clause
If in env there is an option LEGOSH_RUN_HOOK or LEGOSH_RENEW_HOOK and you need to temporarily disable the hook call, you can do it like this:
LEGOSH_NO_HOOK=true lego.sh run|renewOr add LEGOSH_NO_HOOK=true to env.
BSD 3-Clause